Services Provided by Network Devices

Question 1

What network resources can a server provide access to?

Question 2

What are the components of a FQDN?

Question 3

What is IoT?

Answer 3

IoT is a system of connected computing devices and other things that use unique identifiers and the ability to send data over a network without requiring human interaction.

Question 4

What are the most common IoT communication protocols?

Question 5

What CPUs can be used in an embedded system?

Question 6

Domain Name System

Answer 6

Translates hostnames to IP addresses

Question 7

Fully Qualified Domain Name (FQDN)

Answer 7

Host names inside domains that are added to the beginning of the domain name. For example, any name given that is placed in front of Microsoft.com, such as support.Microsoft.com, is a fully qualified domain name.

Question 8

Forward lookup zone

Answer 8

DNS record that matches a hostname to its IP address

Question 9

Reverse lookup zone

Answer 9

DNS record that matches a IP address to its hostname

Question 10

Dynamic Host Configuration Protocol (DHCP)

Answer 10

Automatically assigns the IP configuration when a device connects to the network

Question 11

Simple Mail Transfer Protocol (SMTP)

Answer 11

-The Internet standard protocol for transferring e-mail messages between hosts.
-SMTP assumes that both host and client are constantly connected, but you can use both permanent and dial-up connections to an SMTP host.
-Used for outgoing emails and operates on port 25

Question 12

Post Office Protocol version 3 (POP3)

Answer 12

-A mail-drop protocol designed to work with clients that are not always connected to the network.
-It allows a mail server to receive mail messages and store them on a server until the client comes back on line and requests them.
-Used for incoming emails and operates on port 110.
-Emails are downloaded to the local computer and then removed from the email server.

Question 13

Internet Message Access Protocol (IMAP)

Answer 13

Like POP3, IMAP4 is a protocol that allows a client to download messages from a server. (It does not allow you to send messages.) IMAP4 is much more powerful than POP3. For example, with IMAP4, you can open all folders in your mailbox, not just the Inbox, as well as public folders on the server.
Used for incoming emails and operates on port 143. Emails are kept on the email server allowing users to access their email from multiple devices.

Question 14

Load balancer

Answer 14

-Load balancing is the capability of a router to distribute traffic over all of its network ports that are the same metric from the destination address.
-Internet appliance that monitors servers and distributes network traffic so one server does not get overwhelmed

Question 15

Spam gateway

Answer 15

Internet appliance that monitors incoming and outgoing emails to reduce the amount of spam affecting the network.

Question 16

Proxy server

Answer 16

-A computer on the network that keeps a cache of resolved names and responds to queries for names outside the local subnet.
-An internet appliance typically configured to monitor all incoming and outgoing network traffic and determines if the traffic is allowed or not.

Question 17

Unified Threat Management (UTM) Appliance

Answer 17

combines multiple functions into one single device.

Question 18

Internet of Things (IoT)

Answer 18

IoT is a system of connected computing devices and other things that use unique identifiers and the ability to send data over a network without requiring human interaction.

Question 19

Internet of Everything (IoE)

Answer 19

IoE is another name for IoT.

Question 20

Embedded System

Answer 20

-complete computer system that is designed to perform a specific dedicated task.

Question 21

Application-specific integrated circuit (ASIC)

Answer 21

-created to perform a single function

Question 22

System-on-chip (SoC)

Answer 22

A System-on-chip incorporates all components on the board

Question 23

Field-Programmable Gate Array (FPGA)

Answer 23

A field-programmable gate array is physically setup like a ASIC or SoC, but the programming is configured by the end-user.

Question 24

Industrial Control Systems (ICS)

Answer 24

Industrial control systems (ICSs) handle the workflow and automation process for all sorts of machinery.

Question 25

Programmable logic controller (PLC)

Answer 25

PLC is a specialized controller that can be programmed to perform specific tasks. Multiple PLCs can be combined and configured to work together to carry out complex tasks.

Question 26

Supervisory control and data acquisition (SCADA)

Answer 26

SCADA controllers are used to monitor and control PLC systems. They gather data and adjust the system based on the data acquired from sensors.

Question 27

Human-machine interface (HMI)

Answer 27

The HMI can be either a touch-screen control panel or software running on a typical computer system. The HMI allows the operator to make configuration changes in the ICS.

Question 28

Distributed control system (DCS)

Answer 28

A DCS is a customized all-in-one package that contains the needed PLCs, SCADA controller, and HMI.

Question 29

Modbus

Answer 29

Modbus is a special network protocol that controller systems use to communicate with each other.

Question 30

-one of the key components for any network
- is a computer with a special operating system that can provide different roles on the network
-Depending on the needs of the network, a single ____________ can handle multiple roles or one specific role

Answer 30

server

Question 31

Providing and managing access to _____ is one of the more common roles you can configure servers to handle

Answer 31

files and folders

Question 32

_____ can be stored on the server in _____ that are then shared to other users on the network.

Answer 32

-files
-folders

Question 33

When sharing _____ on the network, you can set permissions (such as read-only, write access, or full control) to manage user access. In some instances, it may be necessary to explicitly deny users access to certain _____.

Answer 33

-folders
-folders

Question 34

You can also configure access to network _____ from outside the network if needed

Answer 34

folders

Question 35

You can use the _____ for this or you can configure the Remote Web Access role on a Windows server to provide remote access to network folders.

Answer 35

File Transfer Protocol (FTP)

Question 36

Only folders can be shared and managed on the server, not individual files. (true/false)

Answer 36

true

Question 37

You can configure servers to manage network _____.

Answer 37

printers

Question 38

When enabling the print server roles, you can configure the server to do three things:

Answer 38

-manage security settings
-monitor printer usage
-provide access to internet printing.

Question 39

_____ have become an integral component of many organizations’ business models

Answer 39

Web sites

Question 40

Maintaining its (web site) own web server gives an organization the ability to make changes and manage its site as needed.
(true/false)

Answer 40

true

Question 41

You can configure a web server to host an internal web site called an _____

Answer 41

intranet

Question 42

Microsoft servers use the _____ web server platform

Answer 42

Internet Information Services (IIS)

Question 43

______servers use Apache which is open-source and the most widely used web server platform.

Answer 43

Linux

Question 44

All networks need to focus on _____.

Answer 44

security

Question 45

The three components of network security are:

Answer 45

-Authentication to verify the user’s identity.
-Authorization to verify that the user is allowed to access resources.
-Accounting to monitor and account for all activity.

Question 46

_____ can be used to provide the accounting component

Answer 46

System log files

Question 47

Whenever a significant event occurs on a network, a system log (syslog) file is generated. (true/false)

Answer 47

true

Question 48

These _____ files contain pertinent information, such as what happened, who did it, when it happened, etc.

Answer 48

system log

Question 49

A _____ should be configured as a central repository to gather and manage all syslog files that are generated across the network.

Answer 49

server

Question 50

On a network, including the internet, computers use IP addresses to identify each other and specify where data should go. However, it is much easier for users to use hostnames or words to identify computers or websites. (true/false)

Answer 50

true

Question 51

-translates hostnames to IP addresses
-This is what makes using the internet so easy

Answer 51

domain name system (DNS)

Question 52

_____ is a hierarchical naming system.

Answer 52

DNS

Question 53

_____ means that the system is organized with a root level at the top and everything branches from that.

Answer 53

Hierarchical

Question 54

_____ is a domain name that spells out each level of the hierarchy.

Answer 54

A fully qualified domain name (FQDN)

Question 55

An example of FQDN is

Answer 55

www.testout.com.

Question 56

The _____ level is the highest level in the DNS hierarchy

Answer 56

root

Question 57

The DNS root level is represented by a period at the end of the of the FQDN. When typing the FQDN into a web browser, the period is typically not included. The period is mainly used when defining DNS records on the server.

Answer 57

facts

Question 58

_____ names have extensions such as com, edu, gov, org, etc

Answer 58

The top-level domain (TLD)

Question 59

The _____ is unique to each organization

Answer 59

domain name

Question 60

The DNS domain is referred to as distributed because this portion is unique to each organization or group. Each organization is responsible for maintaining its own namespace. (true/false)

Answer 60

true

Question 61

_____ is the name of specific hosts on the network

Answer 61

Hostname

Question 62

On an _____ network, an example of a hostname could be server1 or server2.

Answer 62

internal

Question 63

On the internet, this is typically www. On a webserver, www is the name of the root folder that all website files are stored in. (true/false)

Answer 63

true

Question 64

_____ zones are used to maintain and define the domain namespace (e.g., testout in www.testout.com).

Answer 64

DNS

Question 65

_____ (e.g., labs.testout) are also defined and managed in DNS zones.

Answer 65

Subdomains

Question 66

Multiple subdomains can be managed on one server or defined in their own DNS zone as needed. (true/false)

Answer 66

true

Question 67

_____ is defined using a DNS zone file

Answer 67

DNS zone

Question 68

_____ is a text document stored on each server and defines the DNS zone and how it should function.

Answer 68

DNS zone file

Question 69

Each DNS zone must have its own zone file. (true/false)

Answer 69

true

Question 70

When defining a DNS zone, you must specify a forward lookup zone or a reverse lookup zone (true/false)

Answer 70

true

Question 71

A _____ lookup zone matches the hostname to the IP address.

Answer 71

forward

Question 72

A _____ lookup zone matches the IP address to the hostname.

Answer 72

reverse

Question 73

These zones need to be defined because limitations in DNS do not allow this to happen automatically. (true/false)

Answer 73

true

Question 74

Maps an IPv4 (32-bit) DNS host name to an IP address. This is the most common resource record type.

Answer 74

A (host address)

Question 75

Maps an IPv6 (128-bit) DNS host name to an IP address.

Answer 75

AAAA (quad-A)

Question 76

Maps an IP address to a host name (by pointing to an A record).

Answer 76

Pointer
(PTR)

Question 77

Provides alternate names (or aliases) to hosts that already have a host record. For example:
sales.testout can be mapped to the IP address of testout.com
If a single A record is used with multiple CNAME records, only the A record needs to be modified when the IP address changes.

Answer 77

Canonical Name
(CNAME)

Question 78

Identifies servers used for handling email

Answer 78

Mail Exchange
(MX)

Question 79

Stores plaintext notes in a DNS zone. This record type can be used to help prevent email spam and verify domain ownership.

Answer 79

TXT

Question 80

Stores all the administration information about the DNS zone. For example, the administrator’s email address, TTL values, primary name server, etc., is recorded in this file.
SOA records are very important in the zone transfer process.

Answer 80

Start of Authority
(SOA)

Question 81

Defines the authoritative server for a specific domain. This record identifies all name servers that can perform name resolution for the zone.
Typically, there is an entry for the primary server and all secondary servers for the zone (all authoritative DNS servers).

Answer 81

Name Server
(NS)

Question 82

Defines a host and port for a specific service such as voice over IP (VoIP). This allows clients to find services through DNS. Windows automatically creates these records as needed.

Answer 82

DNS Service
(SRV)

Question 83

setting up _____ on a network allows the IP configuration to be assigned automatically when a device connects to the network.

Answer 83

DHCP

Question 84

The IP configuration for DHCP can include:

Answer 84

-unique IP address
-Subnet mask
-Default gateway
-DNS server (only if needed)
-Windows Naming Service (WINS) server (only if needed)

Question 85

To setup DHCP, you must define the DHCP scope. (true/false)

Answer 85

true

Question 86

Depending on the network, different devices may serve as the DHCP server such as:

Answer 86

SOHO router
Windows or Linux server

Question 87

The _____ defines the range of IP addresses that the DHCP server can assign.

Answer 87

IP range

Question 88

When a new device connects to the network, the _____ will assign the next available address.

Answer 88

DHCP server

Question 89

When you define the IP range, be aware that you can assign:

Answer 89

-All available addresses in the network.
-Specific ranges (e.g., 192.168.5.50 - 192.168.5.100). Specifying a limited number of addresses can help limit the number of connections to the network.

Question 90

_____ mask defines the network ID and host ID

Answer 90

subnet

Question 91

_____ are IP addresses that the DHCP server will not assign

Answer 91

Exclusions

Question 92

These addresses (exclusions) are typically used for devices such as servers, printers, routers, or other network devices that must have a static IP address.
These IP addresses must be manually configured on each device.

Answer 92

facts

Question 93

It’s important to remember that the exclusion addresses must fall within the configured IP range. (true/false)

Answer 93

true

Question 94

Reservation IP addresses will also not be assigned by the DHCP server. (true/false)

Answer 94

true

Question 95

Instead of manually configuring the IP information on each device that needs a static IP, you can assign _____ on the DHCP server using the device’s MAC address. Whenever that device connects to the network, the DHCP server assigns it the reserved IP configuration.

Answer 95

reservations

Question 96

_____ is an IP configuration that assigns to a device for a specified amount of time.

Answer 96

DHCP lease time

Question 97

_____ defines where data packets that are leaving the network (e.g., internet packets), should go.

Answer 97

Default gateway

Question 98

Email allows users to communicate with each other whenever they want regardless of physical location. A server can be configured to manage emails for an organization. (true/false)

Answer 98

true

Question 99

Used for outgoing emails and operates on port 25.

Answer 99

Simple Mail Transfer Protocol (SMTP) -

Question 100

Post Office Protocol version 3 (POP3) - Used for incoming emails and operates on port 110. Emails are downloaded to the local computer and then removed from the email server. (true/false)

Answer 100

true

Question 101

Internet Message Access Protocol (IMAP) - Used for incoming emails and operates on _____. Emails are kept on the email server, allowing users to access their email from multiple devices.

Answer 101

port 143

Question 102

Spam email is one of the major concerns with emails. Spam mail can lead to issues including the introduction of malware into the network. (true/false)

Answer 102

true

Question 103

_____ protects against spoofed emails by verifying the sender’s domain address

Answer 103

DomainKeys Identified Mail (DKIM)

Question 104

facts about DomainKeys Identified Mail (DKIM)

Answer 104

A spoofed email looks like it comes from a legitimate user, but in fact comes from somewhere else.
DKIM creates a DNS TXT file on the sender’s email server. The recipient can check the DNS record to verify the sender’s domain is legitimate.
DKIM also creates a pair of encryption keys, one private key and one public key.
The public key is sent along with the email to digitally sign the email.
The private key is kept on the email server, so the receiver is able validate the sender’s identity.

Question 105

_____ is also used to protect against spoofed emails. Instead of using encryption keys, a SPF record is created in the sender’s DNS server.

Answer 105

Sender Policy Frameworks (SPF)

Question 106

facts about Sender Policy Frameworks (SPF)

Answer 106

The SPF contains:
The SPF version being used.
The IPs that are authorized to send emails for the domain.
Any other third-party domains that are authorized to send emails for the domain.
An all tag at the end which indicates the policy that should be applied when the receiving server detects a server that is not part of the SPF record.
The recipient can check the SPF record and verify the IP address of the domain the email comes from. If the IP address matches the DNS records, the email is marked as safe. If the IP address does not match the DNS records, the email is flagged and blocked.

Question 107

_____ combines the protections of both DKIM and SPF to protect users from malicious emails.

Answer 107

Domain-based Message Authentication, Reporting, and Conformance (DMARC)